ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Albo Pretorio Online Plugin 3.2 - Multiple Vulnerabilities

Product
Albo Pretorio Online
Description
There are multiple vulnerabilities in Albo Pretorio Online plugin, such as SQL injection, CSRF and stored XSS. Also, some reflected XSS. Because of these vulnerabilities, the item deletion is unprotected and any element could be deleted, also, eash form input is vulnerable.
Solution
Upgrade the plugin.
Classification
Type Multi
References
Exploit-DB
CVE
Name CVE-N/A
Versions
Affected In <= 3.2
Fixed In 3.3
Disclosure date
2015-07-02
Credits
Alessandro Cingolani